The remote host is missing updates announced in advisory GLSA 200409-12.

All ImageMagick users should upgrade to the latest version: # emerge sync # emerge -pv '>=media-gfx/imagemagick-6.0.7.1' # emerge '>=media-gfx/imagemagick-6.0.7.1' All imlib users should upgrade to the latest version: # emerge sync # emerge -pv '>=media-libs/imlib-1.9.14-r2' # emerge '>=media-libs/imlib-1.9.14-r2' All imlib2 users should upgrade to the latest version: # emerge sync # emerge -pv '>=media-libs/imlib2-1.1.2' # emerge '>=media-libs/imlib2-1.1.2' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200409-12 http://bugs.gentoo.org/show_bug.cgi?id=62309 http://bugs.gentoo.org/show_bug.cgi?id=62487 http://studio.imagemagick.org/pipermail/magick-developers/2004-August/002011.html http://securitytracker.com/alerts/2004/Aug/1011104.html http://securitytracker.com/alerts/2004/Aug/1011105.html

ImageMagick, imlib and imlib2 contain exploitable buffer overflow vulnerabilities in the BMP image processing code.